Release 9.0.33.1¶
This is the Rolling Release Notes for the Release 9.0.33.1. These release notes are applicable only to Privacera's Self Managed version.
Breaking Changes
Discovery Databricks Unity Catalog Authentication
For Databricks Unity Catalog, the username parameter must now be set to token
.
Action Required: Update existing Discovery configurations to use token
as the username value.
For details, see Setup Databricks Unity Catalog on Privacera Portal.
Databricks Unity Catalog¶
Known Issue: Extra Apply Command During Permission Reconciliation
In this release, an additional apply command is triggered during permission reconciliation only when masking and row-level filtering (RLF) are present in Privacera policies. This may cause minor, temporary performance slowdowns during reconciliation, but does not affect overall functionality.
Apache Ranger¶
[Policy Management] Improved Uniqueness Handling for Long Policy Names
[Policy Management] Improved Uniqueness Handling for Long Policy Names¶
Resolved an issue where policy names exceeding 180 characters were incorrectly flagged as duplicates due to partial unique key indexing. The unique constraint on the x_policy table has been updated to use the full name field, ensuring accurate validation of long policy names. Error messages have also been improved to provide clearer feedback.
Privacera Discovery¶
Updated Application Dependencies
Updated Application Dependencies¶
Upgraded application dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.
Base Image Upgraded
Base Image Upgraded¶
Updated the base image to a newer Debian version to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report
Privacera Portal¶
Security Vulnerability Fixes
Security Vulnerability Fixes¶
Addressed known CVEs by updating vulnerable dependencies.
Enhancements to Grafana Portal Dashboard and Alerts
Enhancements to Grafana Portal Dashboard and Alerts¶
Improved the Grafana Portal dashboard with enhanced visualizations and usability updates. Introduced new alert rules to proactively monitor critical Portal metrics, including login failures, error rates, and connection status—enabling quicker issue detection and improved system reliability.
New Feature: Session Management Across Browser Tabs
New Feature: Session Management Across Browser Tabs¶
Introduced support for detecting session changes across browser tabs and windows. If a different user logs in from another tab or window, the current tab will now automatically detect the change and refresh to display the correct user’s data.
Spark Plugin¶
Resolved SELECT Query Failure on VIEW in DBR 14.3 LTS
Resolved SELECT Query Failure on VIEW in DBR 14.3 LTS¶
A fix has been implemented for Databricks Runtime 14.3 LTS to resolve failures when executing SELECT queries on VIEW objects. Previously, these queries were failing with a ClassCastException
.
PolicySync Connector¶
Updated Default Configuration for Tag Reconcile Loader in BigQuery Connector
Updated Default Configuration for Tag Reconcile Loader in BigQuery Connector¶
The Tag Reconcile Loader is now enabled by default with a 540-second sync interval. This ensures automatic maintenance of tag consistency between the BigQuery connector and Apache Ranger. For more information, refer to the Tag Reconcile Loader Configuration section.
Support for OAuth Configuration in Self Managed (Portal Configuration) UI for Databricks Unity Catalog Connector
Support for OAuth Configuration in Self Managed (Portal Configuration) UI for Databricks Unity Catalog Connector¶
Added support for configuring OAuth connection properties in the Self Managed (Portal Configuration) UI for the Unity Catalog connector. For more information, refer to the OAuth Authentication section.
Added On-Demand Sync Support for Databricks Unity Catalog Connector
Added On-Demand Sync Support for Databricks Unity Catalog Connector¶
Added On-Demand Sync support for Databricks Unity Catalog connector. For more information, refer to the On-Demand Sync Supported Connectors section.
Fixed AnalysisException for DECIMAL Datatype in Databricks Unity Catalog Connector
Fixed AnalysisException for DECIMAL Datatype in Databricks Unity Catalog Connector¶
Fixed an issue that caused an AnalysisException: [CANNOT_UP_CAST_DATATYPE]
error when handling DECIMAL datatypes in masking use cases within the Databricks Unity Catalog Connector.
The connector now handles all DECIMAL(p,s) precision and scale combinations more reliably, resolving cases where certain DECIMAL types could cause data type casting errors. Previously, the system would default to DECIMAL(10,2) for processing, which could lead to type mismatches with other precision/scale combinations. This enhancement ensures masking operations work seamlessly across all DECIMAL variations.
Fixed Missing Connector Instance Name in PolicySync Audits for Databricks Unity Catalog Connector
Fixed Missing Connector Instance Name in PolicySync Audits for Databricks Unity Catalog Connector¶
Fixed an issue where the connector instance name for the Databricks Unity Catalog connector was not appearing in PolicySync audit logs as expected.
Fixed ABAC Condition Issues in Masking and RLF for Snowflake Connector
Fixed ABAC Condition Issues in Masking and RLF for Snowflake Connector¶
Fixed issues related to Attribute-Based Access Control (ABAC) conditions in Masking and Row-Level Filtering (RLF) for the Snowflake connector. For more information, refer to the Enable Native Support section.
- Prev topic: Releases